PT-2025-12347 · Audi · Audi Utr Dashcam

Geochen

Published

2025-03-20

Updated

2025-03-20

CVE-2025-2556

CVSS v2.0

3.3

Low

Vector

AV:A/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Audi UTR Dashcam version 2.0

Description A vulnerability was found in the Audi UTR Dashcam, affecting an unknown functionality of the component Video Stream Handler. The manipulation leads to hard-coded credentials. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used.

Recommendations Update to version 2.89 to address this issue for new customers. Update to version 2.90 to address this issue for existing customers. As a temporary workaround, consider restricting access to the Video Stream Handler component until a patch is available.

Exploit

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-259CWE-798

Related Identifiers

CVE-2025-2556

Affected Products

Audi Utr Dashcam

PT-2025-12347 · Audi · Audi Utr Dashcam

CVE-2025-2556

Weakness Enumeration

Related Identifiers

Affected Products

References · 10